FIGURE 2 




Figure 3 



Client 101 




Public 
Network . 134 



136 
138 



Fire 
Wall 



Transaction 
Server 



1 32 



Private 
Network 132 




1 34 



1 30 



Figure 4 



Transaction Server 138 



142 



Cryptographic 
Device 



BEGIN REGISTRATION / 
AUTHENTICATION AT CLIENT 




'aF.J 



200 



FIGURE 5 



USER SELECTS 
IDENTITY 




202 



CLIENT 
TRANSMITS 
IDENTITY TO 

SERVER 




204 



CLIENT 
TRANSMITS 
CHALLENGE 
MESSAGE TO EM 
MODULE AT 
SERVER 




206 



EM MODULE 
DIGITALLY SIGNS 
CHALLENGE 




208 



SM MODULE 
VERIFIES THE 
DIGITALLY 
SIGNED 
CHALLENGE 




212 



210 




PROMPT USER 
NO*| WITH ERROR 
MESSAGE 




209 



AUTHNETICATION / 
REGISTRATION 
SUCCESSFUL 




.211 



INITIATE SECURE 
SAVE AT CLIENT 




220 



FIGURE 6 



ESTABLISH COMMUNICATION 
SESSION BETWEEN EM 
MODULE AT THE SERVER 
AND SM MODULE AT THE 
CLIENT 




222 



USER ENTERS 
IDENTITY INTO 
CLIENT 



224 



226 




YES- 



PROMPT USER / 
END SESSION 




228 



229 x CLIENT GENERATES 

\| MESSAGE FILE COMPRISING 
INFO CORRESPONDING TO 
DATA 



TRANSMIT 
MESSAGE TO 
SERVER 




230 



SERVER 
GENERATES TIME 

STAMP, 
SIGNATURE, KEY 
PAIR 




232 



SERVER STORES 

INFORMATION 
CORRESPONDING 
TO DATA 
RECORD 



ATA IN i 
X)RD 1 



L 



234 




SERVER 
GENERATES 

MESSGE 
COMPRISING 
ENCODE KEY & 
TRANSMITS TO 
CLIENT 



236 



TO STEP 238 



FIG URE 7 



CLIENT STORES 
RECEIVED MESSAGE 




ACCESS DATA 



USE ENCODE 
KEY TO ENCODE 
DATA 




238 



240 



242 



INITIATE SEC , E 
RETREIVE AT CLIENT 




300 



FIGURE 8 



ESTABLISH COMMUNICATION 
SESSION BETWEEN EM 
MODULE AT THE SERVER 
AND SM MODULE AT THE 
CLIENT 




I 



302 



USER ENTERS 
IDENTITY INTO 
CLIENT 




304 




TRANSMIT 
MESSAGE TO 
SERVER 




SERVER 
RETREIVES 
CORRESPONDING 

RECORD FOR 
VERIFICATION OF 
INFORMATION 
MESSAGE 




312 



314 




STEP 320 



318 



FIGURE 9 



SERVER 
GENERATES TIME 
STAMP 



SERVER GENERATES 
MESSAGE 
COMPRISING DATA 
FILE INFORMATION 
AND DECODE KEY 



320 




322 




324 



TRANSMIT 
MESSAGE TO 
CLIENT 




!• 326 



CLIENT 
RECEIVES 
MESSAGE AND 

ACCESSES 
ENCODED DATA 
FILE 




328 



CLIENT 
DECODES 
ENCODED DATA 
FILE USING 
DECODE KEY 




330 



